CVE-2020-5129

7.5HIGH

Key Information:

Vendor: Sonicwall
Status: Sma1000
Vendor: CVE Published:; 26 March 2020

Summary

A vulnerability in the SonicWall SMA1000 HTTP Extraweb server allows an unauthenticated remote attacker to cause HTTP server crash which leads to Denial of Service. This vulnerability affected SMA1000 Version 12.1.0-06411 and earlier.

Affected Version(s)

SMA1000 12.1.0-06411 and earlier

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-202...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 26, 2020
Vulnerability Reserved
Dec 31, 2019

Collectors

NVD DatabaseMitre Database